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Safety-Critical  Software,  facts 


Increas 


Safety-Critical  Systems  are  becoming  softwj 

Today’s  cars  usually  contains 
Application  in  all  domain 

Software  size  is 
...  b 
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(1984) 
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(1997) 


F-35  Lightning  II 
(2006) 
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Understanding  Actual  Software  Issues 


High  Fault  Leakage  Drives  Major  Increase  in  Rework  Cost 


Aircraft  industry  has  reached  limits  of  affordability 
due  to  exponential  growth  in  SW  size  and  complexity. 


Requirements 

Engineering 


70%  Requirements  & 
system  interaction  errors 


System 

Design 


Software 

Architect 

Design 


80%  late  error 
discovery  at  high 
rework  cost 


\  (^70%,  3.5% Jx) 


10%,  50.5%  20x 


urai 


Major  cost  savings  through  rework  avoidance 
by  early  discovery  and  correction 

A  SI  Ok  architecture  phase  correction  saves  $3M 


Component  \  1 

Software  V  ' 

Design  Vi; 

Rework  and  certification  is  70%  of  SW 
cost,  and  SW  is  70%  of  system  cost. 

Sources: 

NIST  Planning  report  02-3,  The  Economic  Impacts  oflnadequate 
Infostructure  for  Software  Testing.  May  2002. 

D  Galin,  Software  Quality  Assurance:  From  Theory  to 
Implementation,  Pearsoa'Addison-Wesley(2004) 

B.W.  Boehm,  Software  Engineering  Economics,  Prentice  Hall  (1981) 


20%,  16%  Jp 
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Unit 

Test 


Where  faults  are  introduced 
Where  faults  are  found 
The  estimated  nominal  cost  for  fault  removal 


Costly  certification  process  leads  to  high 
percentage  of  operational  work  around. 


Code 

Development 
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The  Model-Based  Approach 


Abstract  System  Representation 

Hide  and  delegate  implementation  details  to  tools 
Highlight  Software  or  System  important  concerns 

Separate  domains  of  engineering 

Functional  models  for  representing  control  laws 
Architecture  models  to  validation  components  deployment 

Automate  the  development  process 

Avoid  manual  efforts  (code  production,  system  validation) 
Support  each  development  step  (design,  development,  etc.) 
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Model-Based  Cost  Expected  Benefits 


Should-cost  modeling  identifies  significant  potential  savings 


Integration  testing 


Program  management 


Code  and  unit  testing 


Administration 


Design 

Requirements  analysis  — m 
Flight  testing  — 
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Three  areas  remain 
about  the  same 


Illustrative 


Baseline  proposals 


Should-cost  predictions 
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Model-Based,  other  benefits 


Management  of  Product  Lines 

Components  variability 

Reuse  of  existing  certification/validation  artifacts 

Detect  components  integration  issues 

Before  implementation  efforts 

Check  system  requirements  enforcement  before  testing 

Facilitate  validation/verification/certification  activities 

Generation  of  documentation 
Use  of  Model-Based  Verification 
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Model-Based  Engineering  at  HILT2014 


“AADL  and  Model-Based  Engineering”  -  Peter  Feiler 

“Resolute:  An  Assurance  Case  Language  for  Architecture  Models”  - 

John  Backes 

More  to  come  after! 

5  papers  (almost  50%! )  have  a  focus  on  Model-Based  Engineering 
Common  objectives  with  the  initial  SIGAda  conference 
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